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1 . This action is responsive to the amendment and remarks filed on September 29, 2006. 

r 

2. Applicant's remarks regarding the rejection of the last non-final office action is 
persuasive and, therefore, the non-final rejection of that action is withdrawn. 

3. Claims 1-37 are presented for examination. 

4. The text of those sections of Title 35, U.S. code not included in this office action can be 
found in a prior office action. 

Claim Rejections - 35 USC 103 

5. Claims 1-34 are rejected under 35 U.S.C. 103(a) as being unpatentable over Kalke, U.S. 
Patent Application Publication 2004/0137890 (hereinafter Kalke) and Muramatsu et al, U.S. 
Patent Application Publication 2006/0155803 (hereinafter Muramatsu) in view of Martin, JR. et 
al, U.S. Patent Application Publication 2003/0023849 (hereinafter Martin, JR.). 

6. Kalke and Martin, JR. were cited in the last office action. 

7. As per claims 1 and 33, Kalke taught the invention substantially as claimed by which a 
terminal (10) (122, fig. 1), comprising: 
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sending an access-request signal (page 5, paragraph 84) (sending Activate PDP context 
Request) to a network by a terminal for connecting to a help-portal server of said network (842, 
fig. 8, page 5, paragraphs 79 and 84) and for requesting a provisioning signal or a management 
session signal for configuring the terminal (page 4, paragraph 65); and 

forwarding the access-request signal to the help-portal server by the terminal (Note that 
DNS query must include URL of the GGSN in order for the DNS to lookup corresponding EP 
addresses) using a trusted access point node (e.g. APN) in order to provide the provisioning 
signal or the management session signal to the terminal (page 5, paragraphs 83-90; page 6, 
paragraph 106; page 9, paragraph 149), wherein said help-portal server is identified to said 
terminal by the network using a chain of trust comprising consecutive exchange of information 
between the network and the terminal (1051, 1056, 1058, fig. 10) (i.e., consecutive exchange 
between network (comprised of SGSN, APN DNS, GGSN, WAP Gateway) and the terminal 
(MS)), 

wherein the terminal is enabled for handling data-protocol services and dynamically 
configured for the data-protocol services specific to a service provider (terminal enable for 
receiving activation/provisioning service associated with a particular service provider (page 4, 
paragraph 60; page 7, paragraph 1 14) based on said chain of trust (i.e., consecutive exchange 
between network (comprised of SGSN, APN DNS, GGSN, WAP Gateway) and the terminal 
(MS)) so as to be able to connect said terminal to an IP backbone network via a network (device 
is able to connect to an "back end" activation/provisioning server via a network) (page 4, 
paragraphs 70-71), which provides said data-protocol services and which is provided by said 
service provider (page 7, paragraph 114). 
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8. Kalke did not explicitly use a well-known uniform resource locator (URL) for said help- 
portal server. Muramatsu taught sending a request to a help-portal server by a terminal using a 
well-known uniform resource locator for said help-portal server (PVS 500) (page 4, paragraphs 
55, 65; page 5, paragraphs 79, 80). 

9. It would have been obvious to one having ordinary skill in the art at the time of the 
invention was made to combine the teachings of Muramatsu with Kalke in order for a terminal in 
Kalke's system to send a request to a portal server based on specified address. 

10. Kalke and Muramasu did not specifically teach provisioning in a secure way based on a 
chain of trust. Martin, JR. taught a similar invention for provisioning in a trusted (i.e. "secure") 
environment based on a chain of trust (page 2, paragraphs 1 8-20). 

11. It would have been obvious to one having ordinary skill in the art at the time of the 
invention was made to combine the teachings of Kalke, Muramasu and Martin, JR. because 
Martin, JR.'s teaching of provisioning in .a trusted environment would increase the security in 
Kalke's and Muramasu' s systems by providing the ability to control provisioning to mobile 
devices to prevent unauthorized provisioning (page 1, paragraph 3). 



12. 



As per claim 19, Kalke taught the invention substantially as claimed comprising: 
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a terminal (122, fig. 1), enabled for handling data-protocol services and dynamically 
configured for the data-protocol services specific to a service provider (page 4, paragraph 60), 
responsive to a provisioning signal or to a management session signal for configuring the 
terminal (page 4, paragraph 70), for providing an access-request signal (page 5, paragraph 84); 
and 

a network provided by said service provider (page 7, paragraph 114), responsive to the 
access-request signal (page 5, paragraph 84), for providing the data-protocol services specific to 
a service provider (page 4, paragraph 70), for forwarding the access-request signal to a help- 
portal server (Note that DNS query must include URL of the GGSN in order for the DNS to 
lookup corresponding EP addresses) using a well-known access point node name (APN), for 
providing the provisioning signal or the management session signal to the terminal to perform 
said configuring (page 5, paragraphs 83-90; page 6, paragraph 106; page 9, paragraph 149) and 
for enabling after said configuring a connection of said terminal to an IP backbone network via 
the network (page 6, paragraph 108), wherein said help-portal server is identified to said terminal 
by the network using said chain of trust comprising consecutive exchange of information 
between the network and the terminal (1051, 1056, 1058, fig. 10) (i.e., consecutive exchange 
between network (wherein the network comprised of SGSN, APN DNS, GGSN, WAP Gateway) 
and the terminal (MS)). 

13. Kalke did not explicitly use a well-known uniform resource locator (URL) for said help- 
portal server. Muramatsu taught sending a request to a help-portal server by a terminal using a 
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well-known uniform resource locator for said help-portal server (PVS 500) (page 4, paragraphs 
55, 65; page 5, paragraphs 79, 80). 

14. It would have been obvious to one having ordinary skill in the art at the time of the 
invention was made to combine the teachings of Muramatsu with Kalke in order for a terminal in 
Kalke's system to send a request to a portal server based on specified address. 

15. Kalke and Muramatsu did not specifically teach provisioning in a secure way based on a 
chain of trust. Martin, JR. taught a similar invention for provisioning in a trusted (i.e. "secure") 
environment based on a chain of trust (page 2, paragraphs 18-20). 

16. It would have been obvious to one having ordinary skill in the art at the time of the 
invention was made to combine the teachings of Kalke, Muramatsu and Martin, JR. because 
Martin, JR.'s teaching of provisioning in a trusted environment would increase the security in 
Kalke's and Muramatsu' s systems by providing the ability to control provisioning to mobile 
devices to prevent unauthorized provisioning (page 1, paragraph 3). 

As per claims 34 and 36, Kalke taught the invention substantially as claimed for a 
terminal (122, fig. 1), comprising: 

means for sending, for providing an access-request signal (page 5, paragraph 84) (sending 
Activate PDP context Request) to a network by a terminal for connecting to a help-portal server 
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of said network (842, fig. 8, page 5, paragraphs 79 and 84) and for requesting a provisioning 
signal or a management session signal for configuring the terminal (page 4, paragraph 65), 

means for forwarding the access re-quest signal to the help-portal server by the terminal 
using a trusted access point node in order to provide the provisioning signal or the management 
session signal to the terminal (page 5, paragraphs 83-90; page 6, paragraph 106; page 9, 
paragraph 149), wherein said help-portal server is identified to said terminal by the network 
using a chain of trust comprising consecutive exchange of information between the network and 
the terminal (1051, 1056, 1058, fig. 10) (i.e., consecutive exchange between network (comprised 
of SGSN, APN DNS, GGSN, WAP Gateway) and the terminal (MS)), 

wherein the terminal is enabled for handling data-protocol services and dynamically 
configured for the data-protocol services specific to a service provider (terminal enable for 
receiving activation/provisioning service associated with a particular service provider (page 4, 
paragraph 60; page 7, paragraph 1 14) based on said chain of trust (i.e., consecutive exchange 
between network (comprised of SGSN, APN DNS, GGSN, WAP Gateway) and the terminal 
(MS)) so as to be able to connect said terminal to an IP backbone network via a network (device 
is able to connect to an "back end" activation/provisioning server via a network) (page 4, 
paragraphs 70-71), which provides said data-protocol services and which is provided by said 
service provider (page 7, paragraph 1 14). 

17. Kalke did not explicitly use a well-known uniform resource locator (URL) for said help- 
portal server. Muramatsu taught sending a request to a help-portal server by a terminal using a 
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well-known uniform resource locator for said help-portal server (PVS 500) (page 4, paragraphs 
55, 65; page 5, paragraphs 79, 80). 

18. It would have been obvious to one having ordinary skill in the art at the time of the 
invention was made to combine the teachings of Muramatsu with Kalke in order for a terminal in 
Kalke's system to send a request to a portal server based on specified address. 

19. Kalke and Muramatsu did not specifically teach provisioning in a secure way based on a 
chain of trust. Martin, JR. taught a similar invention for provisioning in a trusted (i.e. "secure") 
environment based on a chain of trust (page 2, paragraphs 18-20). 

20. It would have been obvious to one having ordinary skill in the art at the time of the 
invention was made to combine the teachings of Kalke, Muramatsu and Martin, JR. because 
Martin, JR.'s teaching of provisioning in a trusted environment would increase the security in 
Kalke's system by providing the ability to control provisioning to mobile devices to prevent 
unauthorized provisioning (page 1, paragraph 3). 

21 . As per claims 2, 21, 35, and 37, Kalke, Muramatsu arid Martin, JR. taught the invention 
substantially as claimed in claims 1 and 19 above. Kalke further taught wherein said data- 
protocol services specific to said service provider are provided by a general packet radio service 
(page 9, paragraph 149). 
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22. As per claim 3, Kalke, Muramatsu, and Martin, JR. taught the invention substantially as 
claimed in claim 1 above. Kalke further taught wherein the access-request signal is sent by a 
browser user agent block of the terminal (page 4, paragraphs 61-62). 

23. As per claims 4 and 20, Kalke, Muramatsu, and Martin, JR. taught the invention 
substantially as claimed in claims 1 and 19 above. Muramatsu further taught wherein the well- 
known uniform resource locator is allowed by an access control profile of the terminal (page 4, 
paragraphs 55, 65; page 5, paragraphs 79, 80). 

24. As per claim 5, Kalke, Muramatsu, and Martin, JR. taught the invention substantially as 
claimed in claim 1 above. Kalke further taught comprising sending the provisioning signal or the 
management session signal to the terminal for configuring the terminal (page 4, paragraph 70). 

25. As per claims 6 and 30, Kalke, Muramatsu, and Martin, JR. taught the invention 
substantially as claimed in claims 5 and 19 above. Kalke further taught wherein the provisioning 
signal is sent over an IP bearer or sent using a short message service protocol (fig. 12) (i.e. WAP 
gateway 1244 connected to the portal 252 as IP bearer). 

26. As per claims 7 and 3 1, Kalke, Muramatsu, and Martin, JR. taught the invention 
substantially as claimed in claims 6 and 30 above. Kalke further taught wherein said 
provisioning signal is sent over the IP bearer using a hypertext transfer protocol or a hypertext 
transfer protocol secure (page 4, paragraph 62). 
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27. As per claims 8 and 32, Kalke, Muramatsu, and Martin, JR. taught the invention 
substantially as claimed in claims 6 and 30 above. Kalke further taught wherein said 
provisioning signal is sent over the air (page 6, paragraph 110). 

28. As per claims 9 and 23, Kalke, Muramatsu, and Martin, JR. taught the invention 
substantially as claimed in claims 1 and 19 above. Kalke further taught comprising: 

identifying to the terminal the trusted access point node name by a trusted home location 
register of the network (page 6, paragraph 106); 

forwarding the access-request signal to the trusted access point node by the terminal 
(page 5, paragraph 84; page 9, paragraph 149); 

identifying to the terminal a trusted domain name service server of the network by the 
trusted access point node (page 5, paragraph 84; page 9, paragraph 149); 

forwarding said access-request signal by the terminal to the trusted domain name service 
server for identifying an address mapping for the help-portal server (page 5, paragraphs 85-86 
and 90); and 

identifying said address mapping to the terminal by the trusted domain name service 
server (page 5, paragraph 89). 

29. As per claims 10 and 24, Kalke, Muramatsu, and Martin, JR. taught the invention 
substantially as claimed in claims 9 and 23 above. Kalke and Muramatsu further taught wherein 
a security of configuring the terminal is ensured by means of the chain of trust built by the 
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trusted home location register (see Kalke, 1 132, fig. 1 1), by the well-known access point node 
name for accessing the trusted access point node (see Kalke, page 5, paragraph 87), by the 
trusted access point node (see Kalke, page 5, paragraph 86) (i.e. GGSN that handles the specific 
APN), by the trusted domain name service server (see Kalke, 1024, fig. 10) and by the well- 
known uniform resource locator (see Kalke, page 5, paragraphs 85-86, i.e., Note that it is 
inherent that DNS query must included a URL in order for the DNS to retrieve a list of DP 
addresses; see Muramatsu, page 4, paragraphs 55, 65; page 5, paragraphs 79, 80). 

30. As per claim 1 1, Kalke, Muramatsu, and Martin, JR. taught the invention substantially as 
claimed in claim 1 above. Kalke further taught wherein after forwarding the access-request 
signal to the help-portal server, the method further comprises: sending a user authentication 
request signal to an authentication block of the network or to the terminal or to both, the 
authentication block and the terminal, respectively, by the help-portal server, and a receiving 
authentication confirmation signal back from the authentication block or from the terminal, 
respectively, or from both, the authentication block and the terminal (page 14, paragraphs 226 
and 228); and 

determining if the terminal is authentic by the help-portal server based on the 
authentication confirmation signals (page 14, paragraph 227). 

31. As per claims 12 and 25, Kalke, Muramatsu, and Martin, JR. taught the invention 
substantially as claimed in claims 1 1 and 23 above. Kalke and Muramatsu further taught 
wherein said access-request signal contains user identification information (e.g. MSISDN) (see 
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Kalke, page 5, paragraphs 85-86), a generic uniform resource locator (URL) request for the help- 
portal server (see Muramatsu, page 4, paragraphs 55, 65; page 5, paragraphs 79, 80), and a well- 
known access point node name for accessing the trusted access point node or a wildcard access 
point node (see Kalke, page 5, paragraph 87). 

32. As per claims 13 and 26, Kalke, Muramatsu, and Martin, JR. taught the invention 
substantially as claimed in claims 12 and 25 above. Kalke further taught comprises: 

sending a triggering signal (e.g. request) to a provisioning server by the help-portal server 
(page 4, paragraph 66; fig. 8); and (Since the wireless device access the provisioning server 852 
via portal server, thus the request must be forward to the provisioning server by the portal server) 

sending a provisioning signal by the provisioning server to the terminal and so 
configuring said terminal (page 4, paragraph 70). 

33. As per claims 14 and 27, Kalke, Muramatsu, and Martin, JR. taught the invention 
substantially as claimed in claims 1 1 and 23 above. Kalke and Muramatsu further taught 
wherein said access-request signal contains user identification information (e.g. MSISDN) (see 
Kalke, page 5, paragraphs 85-86), a generic uniform resource locator request for the help-portal 
server (see Muramatsu, page 4, paragraphs 55, 65; page 5, paragraphs 79, 80) and for a device 
management server (e.g. PDP address), a well-known access point node name for accessing the 
trusted access point node or a wildcard access point node (e.g. APN) (see Kalke, page 5, 
paragraph 87). 



Application/Control Number: 10/757,560 Page 13 

Art Unit: 2152 

34. As per claim 28, Kalke, Muramatsu, and Martin, JR. taught the invention substantially as 
claimed in claim 27 above. Kalke further taught wherein the network further comprises: a device 
management server (242, fig. 2), responsive to the access-request signal (PDP Context Request) 
and to a further access-request signal (subsequent PDP Context Request) containing a network 
access authentication (i.e. responsive to PDP Context Request containing MSISDN), for 
providing the management session signal to the terminal for configuring the terminal (page 4, 
paragraphs 69-70). 

35. As per claims 15 and 29, Kalke, Muramatsu, and Martin, JR. taught the invention 
substantially as claimed in claims 14 and 28 above. Kalke and Martin, JR. further taught 
comprising: 

sending an initial provisioning triggering signal to a device management server for initial 
provisioning (see Kalke, page 4, paragraphs 65-66); and 

sending a further triggering signal by the help-portal server to an initialization content 
handler of the terminal, said further triggering signal containing a proxy address for connecting 
to the device management server (see Martin, JR., page 3-4, paragraphs 29-30). 

36. It would have been obvious to one having ordinary skill in the art at the time of the 
invention was made to combine the teachings of Kalke, Muramatsu, and Martin, JR. for the same 
reason set forth in claim 1 above. 
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37. Kalke, Muramatsu, and Martin, JR. did not teach containing a password in the triggering 
signal. It would have been obvious to one having ordinary skill in the art at the time of the 
invention was made to include a password in a triggering signal (e.g. request) in order for a 
terminal to access to a server because by doing so it would avoid unauthorized terminal 
accessing to a sensitive data in the server, thus increase the security of a system. 

38. As per claim 16, Kalke, Muramatsu, and Martin, JR. taught the invention substantially as 
claimed in claim 15 above. Martin, JR. further taught comprising: determining if the further 
triggering signal contains an instruction of making a connection (i.e. for establishing a 
provisioning session) to the device management server by the terminal (page 3, paragraph 29). 

39. It would have been obvious to one having ordinary skill in the art at the time of the 
invention was made to combine the teachings of Kalke, Muramatsu, and Martin, JR. because 
Martin, JR.'s teaching of determining if a triggering signal contains an instruction of making a 
connection to the device management server would increase the efficiency of Kalke' s and 
Muramatsu' s systems by allowing a terminal to receive provisioning directive remotely from a 
device management server. 

40. As per claim 17, Kalke, Muramatsu, and Martin, JR. taught the invention substantially as 
claimed in claim 16 above. Martin, JR. further taught comprises: 
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sending a start signal (i.e. forwarding the SMS provisioning message as a start signal) to 
a device management agent block of the terminal by the initialization content handler block 
(page 4, paragraph 30); 

sending a further access-request signal containing a network access authentication to the 
device development server by the device management agent block (page 4, paragraphs 30-31); 
and 

sending the management session signal by the device development server to the terminal 
for further configuring the terminal (page 4, paragraph 31). 

41 . It would have been obvious to one having ordinary skill in the art at the time of the 
invention was made to combine the teachings of Kalke, Muramatsu, and Martin, JR. because 
Martin, JR.'s teaching of sending signal for further configuring the terminal would increase the 
efficiency of Kalke' s and Muramatsu' s systems by allowing a terminal to receive provisioning 
directive remotely from a device management server. 

42. As per claims 18 and 22, Kalke, Muramatsu, and Martin, JR. taught the invention 
substantially as claimed in claims 1 and 19 above. Kalke further taught comprises: starting a 
browser user agent by a starting signal from a user (page 8, paragraph 139). (Note that Kalke 
taught activate a device with user interface (i.e. browser user agent), thus it is inherent that a user 
must present a starting signal to start the user interface (e.g. clicking on an interface icon). 
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43. Applicant's arguments, see page 16, lines 3-10, filed 9/29/06, with respect to claims 1, 
19, and 34 have been fully considered and are persuasive. The 35 USC 103 rejection of claims 1, 
19, and 34 has been withdrawn. However, upon further consideration, a new ground(s) of 
rejection is made over Kalke and Muramatsu in view of Martin, JR. 

44. Applicant's arguments, see page 15, line 25-page 16, line 2, filed 9/29/06, with respect to 
1-18 have been fully considered and are not persuasive. The 35 USC 1 12 2 nd rejection of claims 
1-18 is maintained. In the telephone interview conducted on 6/22/06, applicant explains that the 
terms "forwarding" as having same meaning as "sending". Applicant only clarified the meaning 
of the terms "sending" vs. "forwarding" as stated in the interview on 6/22/06, however, 
Applicant does not clarify how the access request signal can be sent again in line 14, when the 
access request signal was already sent in line 9. Applicant does not explain if the claim 
requirement of "sending an access-request signal. . ." in line 9 is the same claim requirement as 
"forwarding the access-request signal..." in line 14. Accordingly, rejection of 35 USC 1 12 2 nd is 
maintained. 



CONCLUSION 



45. The prior art made of record and not relied upon is considered pertinent to applicant's 
disclosure. 

Fukuda, US 2002/0116268 
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46. A shortened statutory period for reply to this Office action is set to expire THREE 
MONTHS from the mailing date of this action. Any inquiry concerning this communication or 
earlier communications from the examiner should be directed to Philip C Lee whose telephone 
number is (571)272-3967. The examiner can normally be reached on 8 AM TO 5:30 PM 
Monday to Thursday and every other Friday. If attempts to reach the examiner by telephone are 
unsuccessful, the examiner's supervisor, Bunjob Jaroenchonwanit can be reached on (571) 272- 
3913. The fax phone number for the organization where this application or proceeding is 
assigned is 571-273-8300. Information regarding the status of an application may be obtained 
from the Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. Status 
information for unpublished applications is available through Private PAIR only. For more 
information about the PAIR system, see http://pair-direct.uspto.gov. Should you have questions 
on access to the Private PAIR system, contact the Electronic Business Center (EBC) at 866-217- 
9197 (toll-free)^ 




